1. Who we are
meeto.me (“the Service”) provides browser-based video meetings, meeting recordings, AI meeting notes and time-booking pages. This policy explains what data we process and why. Questions: privacy@meeto.me.
2. Data we process
- Account data. If you sign in with Google we store your name, email address and avatar URL. We never receive your Google password.
- Meetings.Room codes, meeting titles, participants’ display names and connection-quality metrics (latency, packet loss) used for troubleshooting. Media (audio/video) is transmitted through our servers in real time and is not stored, except as described below.
- Recordings you start.When a host starts a recording or AI notes, all participants see an on-screen indicator. Recordings are stored for 7–30 days (host’s choice) and then deleted. Audio for AI notes is transcribed by OpenAI and deleted immediately after transcription; the transcript and summary are kept on the meeting page.
- Security recordings. To combat abuse and to comply with legal obligations, meetings on the Service may be recorded (audio) on the server side and retained for up to 90 days in encrypted storage with strictly limited access. These recordings are not shown in the product interface, are never used for marketing or model training, and are only reviewed in response to abuse reports or lawful requests. If you do not agree to this, please do not use the Service.
- Bookings. When you book a time with a host we store your name, email, the chosen slot and your optional note, and share them with the host.
- Payments. Payments are processed by Stripe. We store your plan, Stripe customer and subscription identifiers — never card numbers.
- Google Calendar. If a host connects Google Calendar we request free/busy access only, to exclude busy times from booking slots. We do not read event titles or contents.
- Anti-abuse signals. We use Cloudflare Turnstile and may use device fingerprinting (Tracio) to detect bots and repeated abuse. These signals are used solely for security.
- Cookies. We use strictly necessary cookies: session sign-in and language preference. No advertising cookies.
3. Where data is stored
Service data is stored on our servers in the EU and in Cloudflare R2 object storage (recordings, backups — encrypted). Transcription and summaries are performed by OpenAI under their API data-usage terms (no training on API data). Emails are delivered via Resend.
4. Retention
- Anonymous rooms — deleted after 24 hours of inactivity.
- Recordings — 7 or 30 days, then deleted automatically.
- Security recordings — up to 90 days, then deleted automatically.
- Call-quality metrics — 30 days. Abuse reports — 90 days.
- Account data — until you delete your account (write to us).
5. Your rights
You may request access to, correction or deletion of your personal data at privacy@meeto.me. If you are in the EU/EEA you also have the rights provided by the GDPR, including the right to lodge a complaint with a supervisory authority.
6. Changes
We will post any changes to this policy on this page and update the date above. Material changes will be announced on the home page.